Principles of Information Security Final Review Exam Questions And Correct Answers.
3 views 0 purchase
Course
Information Security Professional Certifications
Institution
Information Security Professional Certifications
1. What member of an organization should decide where the information security functions belongs within the organizational structure? Why? - Answer Not sure
2. List and describe the options for placing the information security function within the organization. Discuss the advantages and disad...
Principles of Information Security Final
Review Exam Questions And Correct
Answers.
1. What member of an organization should decide where the information security functions belongs
within the organizational structure? Why? - Answer Not sure
2. List and describe the options for placing the information security function within the organization.
Discuss the advantages and disadvantages of each option - Answer > IT
> Physical security
> Admin services
> Insurance and risk mgt
> The legal dpt
Advs/dis?
3. For each major information security job covered title covered in the chapter, list and describe the key
qualifications and requirements for the position. - Answer See next few cards
CISO - Answer Qualifications:
- Bachelor's degree
- Sometimes grad degree
- Communication, interpersonal, management skills
Reqs:
- Manages the overall infosec program
- Drafts/approves infoSec policies
- Works w/ CIO on strategic, develops tactical, works w/ sec mgrs on operational
- Develops infosec budgets
, - Sets priorities for purchase/impl of infosec projects/tech
- Makes decisions/recommendations for recruiting/hiring/firing
- Acts as infosec team spokesperson
CSO - Answer Qualifications:
- CISO's position may be combined with physical security responsibilities
- Demonstrate experience as a security magr w/ planning, policy, and budgets
Reqs:
- familiar with infosec reqs and "gaurds, gates, guns" approach
Security Manager - Answer Qualification
- Bachelor's in tech, bus, or sec-related
- CISSP certification
- often have accreditation
- ability to draft middle- and lower-level policies, standards, and guidelines
- budgeting, project management, and hiring and firing
- ability to manage technicians
Reqs:
- Daily ops of infosec program
- Accomplish CISO objs and resolve technician issues
- General understaning of tech
- Ability to draft middle and lower level policies, standards and guidelines
- Experience in trad. bus matters
- Manage technicians
Security Analyst (sec technicians) - Answer Qual:
The benefits of buying summaries with Stuvia:
Guaranteed quality through customer reviews
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
Quick and easy check-out
You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.
Focus on what matters
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
Frequently asked questions
What do I get when I buy this document?
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Satisfaction guarantee: how does it work?
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Who am I buying these notes from?
Stuvia is a marketplace, so you are not buying this document from us, but from seller TestSolver9. Stuvia facilitates payment to the seller.
Will I be stuck with a subscription?
No, you only buy these notes for $10.19. You're not tied to anything after your purchase.